GAO: Air traffic cybersecurity won't fly at FAA

Air traffic control systems operated by the Federal Aviation Administration contain significant cybersecurity weaknesses and are vulnerable to attack, according to a recent report from the Government Accountability Office.

'FAA has made progress in implementing information security for its air traffic control systems by establishing an agencywide information security program and addressing many of its previously identified security weaknesses; however, it still has significant weaknesses that threaten the integrity, confidentiality and availability of its systems'including weaknesses in controls that are designed to prevent, limit and detect access to those systems,' the report said.

FAA officials admit that the weaknesses exist but contend that because parts of their systems are custom-built with older equipment, special-purpose operating systems and proprietary communication interfaces, chances for unauthorized access are limited, according to the report.
To read the GAO report, go to and enter 494 in the

Stay Connected

Sign up for our newsletter.

I agree to this site's Privacy Policy.